Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/l3u4Zo8OxyADI69RyjVB1Hz7vTk.roa
File: l3u4Zo8OxyADI69RyjVB1Hz7vTk.roa (raw, json)
Hash identifier: K8v1Jo2fUMsNChJqfvF3yGMl33EqvtjVtsUsHzSlsZs=
Subject key identifier: 97:7B:B8:66:8F:0E:C7:20:03:23:AF:51:CA:35:41:D4:7C:FB:BD:39
Certificate issuer: /CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Certificate serial: 01856F54B7461260AA30E43DF4CFC962006F
Authority key identifier: 49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/l3u4Zo8OxyADI69RyjVB1Hz7vTk.roa
Signing time: Sun 01 Jan 2023 21:55:00 +0000
ROA not before: Sun 01 Jan 2023 21:55:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 46573
IP address blocks: 81.29.152.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 06 Mar 2023 09:16:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:54:b7:46:12:60:aa:30:e4:3d:f4:cf:c9:62:00:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Validity
Not Before: Jan 1 21:55:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=977bb8668f0ec7200323af51ca3541d47cfbbd39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:fd:3c:de:ef:c3:e5:36:1e:da:16:e7:b2:58:
f7:66:ec:89:fa:f6:00:a7:1e:5e:33:4b:89:29:00:
98:50:e9:56:4b:5a:fe:f9:4a:9f:60:cd:c2:aa:60:
45:d3:11:cc:58:e9:d4:bf:bb:2b:da:a9:01:ab:67:
65:d1:a1:40:1b:ad:4b:45:e6:68:cb:e3:23:a6:70:
0d:94:0d:50:e7:50:cf:06:79:b2:85:03:92:9e:c6:
f9:ef:25:b6:3f:4c:56:bc:3b:5d:39:c3:e0:8f:07:
ed:32:75:36:02:33:62:07:84:f1:5a:58:fa:c8:81:
82:5e:a9:5d:8d:e2:7a:b8:46:63:a6:e5:3b:fc:0f:
e2:cf:eb:9a:0d:c8:72:76:62:08:1f:1f:d0:78:95:
ea:31:76:35:33:c9:bb:47:ce:f3:25:33:8f:49:60:
47:46:7c:06:5f:4c:02:09:8a:d9:de:1c:cb:39:32:
87:f1:dc:52:e7:15:6b:d6:b8:53:ac:09:11:e7:81:
03:ea:9a:d0:7c:40:81:43:4b:da:25:9f:3f:da:50:
f3:9e:4b:35:e2:cb:fb:ad:ae:b7:29:36:61:58:49:
fe:7a:32:d6:da:ee:b9:3a:c8:5d:88:ab:7a:91:c7:
e0:df:24:d7:51:1b:80:3a:d7:30:66:3b:2a:5c:a6:
7a:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:7B:B8:66:8F:0E:C7:20:03:23:AF:51:CA:35:41:D4:7C:FB:BD:39
X509v3 Authority Key Identifier:
keyid:49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/l3u4Zo8OxyADI69RyjVB1Hz7vTk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SeUWlMTUa0_MAvrnHl25QqcQjkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.29.152.0/24
Signature Algorithm: sha256WithRSAEncryption
53:d0:99:61:2f:cc:07:23:09:91:30:9b:a4:85:9c:16:f7:1e:
56:52:34:3e:07:0c:b6:bc:c0:c9:6f:59:00:32:09:1e:8a:6e:
ed:82:59:67:c6:fb:3b:be:d5:bc:97:a2:1a:5d:b7:a2:ba:d4:
5b:8b:0b:ee:8e:9a:6b:fa:9d:6a:1d:07:65:ad:6c:94:d8:eb:
b1:da:71:f7:e8:4d:c0:8c:ab:7b:6d:b4:c7:3c:e3:58:d4:49:
1a:89:4d:08:57:86:e5:59:bb:92:32:34:8d:7d:f9:ca:ef:11:
c6:d1:b0:9f:4a:73:cd:88:93:d6:42:c8:59:d3:df:d2:75:82:
6c:30:08:97:7b:a4:d6:b5:3b:70:b6:f6:1c:7a:c4:35:c0:24:
c7:c5:a6:d5:cc:0a:8e:73:d1:ee:5c:75:f8:22:ae:4e:95:bb:
dd:a4:1c:11:63:1b:04:f9:dc:53:fe:39:21:5f:be:ff:0d:f5:
e4:f4:2a:35:71:37:cd:c2:c2:30:d0:1e:a4:ba:a4:12:90:d8:
d9:96:c8:d5:e4:81:d6:56:1d:d9:e6:86:92:17:d2:65:bf:d6:
10:0d:be:63:35:b1:90:84:e0:08:9f:bd:68:b4:58:29:46:66:
0e:0a:c7:b4:b1:1d:ed:d0:f4:fd:4f:6f:46:1c:1f:17:5f:bc:
7c:f0:1e:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:36 2024 by rpki-client on console-ams.rpki-client.org